Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: /rWJlFu+j/Tz8C48IXSqvm5LMYdWW2mDM8P41kwYrpU=
Subject key identifier: E5:69:D6:35:24:D0:D9:E6:31:92:51:E3:22:1C:D9:8F:33:C6:32:30
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 019D2A72BD8227D5A2BB22A07302696E4080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 14:00:55 +0000
Manifest this update: Thu 26 Mar 2026 14:00:55 +0000
Manifest next update: Fri 27 Mar 2026 14:00:55 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: swTaUSqpRlnlgzX4gLolN8fHIaVfmULXY4OEmmUIbg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:bd:82:27:d5:a2:bb:22:a0:73:02:69:6e:40:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Mar 26 14:00:55 2026 GMT
Not After : Mar 27 14:00:55 2026 GMT
Subject: CN=e569d63524d0d9e6319251e3221cd98f33c63230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bb:5c:f8:bb:71:84:ad:fb:31:73:95:da:40:
7d:5f:d3:3d:f3:e5:8b:d4:92:89:5c:18:3c:70:27:
9b:9f:8d:de:92:73:dc:25:cc:81:6f:0a:3e:bf:73:
7b:c6:c6:ca:ff:17:7d:c0:21:8d:4a:a6:f2:45:44:
e5:88:91:d3:f7:a0:07:40:f9:f0:af:bc:92:b5:c8:
4b:9e:d7:6a:f0:bc:f9:68:b2:7f:4f:21:96:05:a6:
49:dc:6b:78:81:bb:1a:aa:4c:e1:cc:bb:6b:4f:19:
66:1f:fa:21:47:ff:35:86:7e:81:db:8d:7c:21:2b:
4e:e0:47:31:da:27:ce:cd:02:4e:b5:1e:c7:5c:61:
a3:d2:55:ba:c5:8e:0d:73:01:78:85:c5:30:35:83:
29:d3:ff:3a:34:57:14:dc:ba:31:58:62:0c:08:aa:
48:c6:38:f0:47:b7:55:06:ed:9a:47:9f:80:4f:a8:
bc:7e:4d:a5:ab:42:5a:ad:1f:f3:9e:d6:49:a4:b1:
97:6a:66:66:31:14:6b:44:62:d1:24:93:60:89:59:
03:1f:36:53:c4:db:5f:01:04:80:f3:0a:bf:21:5a:
26:46:a5:04:c3:22:3b:ec:39:53:2a:36:d8:a7:bb:
1e:9b:d9:b9:96:a3:31:6b:84:98:50:48:55:44:45:
4d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:69:D6:35:24:D0:D9:E6:31:92:51:E3:22:1C:D9:8F:33:C6:32:30
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:77:e4:44:b5:d3:90:78:c6:4e:7c:9b:f7:24:cf:60:6d:e5:
bd:c1:c2:7c:00:90:25:74:8f:17:b9:50:e3:7d:ee:8e:f2:d3:
35:73:a5:45:21:20:6f:6c:d5:03:84:43:65:38:ab:13:5d:9d:
17:bc:2d:77:e2:bf:e9:8e:58:7a:9a:5c:bc:99:97:84:ae:75:
35:4f:25:aa:95:5e:f3:2f:85:79:a6:ff:8d:0a:ce:8e:9d:08:
9f:89:3c:17:bc:43:87:57:10:53:a4:52:ff:84:fe:ed:28:79:
54:da:ff:b2:6e:2e:ee:5e:8c:99:9f:3d:29:f4:ea:4b:a8:9a:
91:2a:4a:8b:ea:24:a9:4a:b5:61:c1:1b:0c:9a:a2:05:2a:23:
aa:c4:d4:8b:fa:85:ba:bf:b8:f7:7b:df:ed:4b:8f:ae:66:58:
52:ef:8a:09:90:6e:4f:f9:79:5a:44:1e:6e:82:db:1a:33:7e:
8f:9c:1d:30:91:13:87:ce:b3:12:46:0c:22:b0:23:1a:d2:9c:
ab:03:a8:5e:d6:2c:31:68:66:05:42:7e:5b:33:32:12:34:fb:
ec:99:a5:c2:46:1b:e9:3c:60:d2:6c:c1:d7:2e:ca:67:20:98:
2e:ef:ca:fa:85:c4:24:4f:a2:e9:ec:5d:81:d3:26:e2:ed:0b:
c5:24:d0:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:35:42 2026 by rpki-client